TRANSACTION VERIFICATION PROTOCOL FOR SMART CARDS 

^ ""^TTie^t^^ and apparatus for verifying the authenticity 

of partners in an electronic transaction. -..^ 
5 It has become widely accepted to conducnrdnsactions such that as financial 

transactions or exchange of documents electronically. In order to verify the transaction, it is 
also well-known to "sign" the transaction digitally so that the authenticity of the transaction 
can be verified. The signature is performed according to a protocol that utiaizes the message, 
i.e. the transaction, and a secret key associated with the party. Any attempt to tamper with ^ 

10 the message or to use^a key other than that of the signing party will result in an 

incompatibility between the message and the signature or will fail to ideirtify ,the party 
correctly and thereby lead to rejection of the transaction. 

The signature must be performed such that the parties' secret key cannot be 
determined. To avoid the complexity of distributing secret keys, it is convenient to utilize a 

15 public key encryption scheme in the generation of the signature. Such capabilities are 

available where the transaction is conducted between parties having access to relatively large 
computing resources but it is equally important to facilitate such transactions at an individual 
level where more limited computing resources are available. 

Automated teller machines (ATMs) and credit cards are widely used for personal 

20 transactions and as their use expands, so the need to verify such transactions increases. 
Transaction cards are now available with limited computing capacity, so-called "Smart 
Cards," but these are not sufficient to implement existing digital signature protocols in a 
commercially viable manner. As noted above, in order to generate a digital signature, it is 
necessary to utilize a public key encryption scheme. Most public key schemes are based on 

25 the Diffie Helman Public key protocol and a particularly popular implementation is that 

known as DSS. The DSS scheme utilizes the set of integers Zp where p is a large prime. For 
adequate security, p must be in the order of 512 bits although the resultant signature may be 
reduced mod q, where q divides p-1, and may be in the order of 160 bits. 

The DSS protocol provides a signature composed of two components r, s. The 

30 protocol requires the selection of a secret random integer k from the set of integers (0, 1 , 
2,...q-l),i.e. 



ke {0,1,2,.. .q-1). 
The component r is then computed such that 
r= {p*" mod p} modq 
where P is a generator of q. 
5 The component s is computed as 

s = [ k'^ (h(my) -I- at] mod q 
where m is the message to be transmitted, 
h(m) is a hash of the message, and 
a is the private key of the user. 
10 The signature associated with the message is then s,r which may be used to verify the 

origin of the message from the public key of the user. 

The value of p*" is computationally difficult for the DSS implementation as the 
exponentiation requires multiple multiplications mod p. This is beyond the capabilities of a 
"Smart Card" in a commercially acceptable time. Although the computation could be 
15 completed on the associated ATM, this would require the disclosure of the session key k and 
therefore render the private key, a, vulnerable. 
W0\\. ""^"Aiialternative encryption scheme that provides enhanced security at relatively small 

modulus is that ut]liimg.^lli^ curves in the finite field 2"". A value of m in the order of 1 55 
provides security comparable toa""'5i24jitmodulus for RS A and therefore offers significant 
20 benefits in implementation. Diffie Helman PxibTi£i^ey.encryption utilizes the properties of 
discrete logs so that even if a generator p and the exponentiatioiTpSsJj^ioym the value of k 
cannot be determined. 

A similar property exists with elliptic curves where the addition of two points on a 
curve produces a third point on the curve. Similarly, multiplying a point by an integer k 
2 5 produces a point on the curve. 

However, knowing the point and the origin does not reveal the value of the integer 'n' 
which may then be used as a session key for encryption. The value kP, where P is an initial 
known point, is therefore equivalent to the exponentiation p\ 

Elliptic Curve Crytposystems (ECC) offer advantages over other public key 
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cryptosystems when bandwidth efficiency, reduced computation, and minimized code space 
are application goals. 

The preferred embodiment of the present invention discloses a protocol optimized for 
an ECC implementation for use with a "smartcard" having limited computing capacity. The 
protocol has been found to provide superior performance relative to other smartcard protocols 
and is achievable with an ECC implementation. 

^^Slhe protocol disclosed is appropriate for smartcard purchase applications such as 
those that nn^^t be completed between a terminal or ATM and a users personal card. The 
protocol provides a^ignature scheme which allows the card to authenticate the terminal 
without urmecessary signalui^erification which is an computationally intense operation for 
the smart card. The only signatureVejification required is that of the terminal identification 
(as signed by the certifying authority, or C^^s^ch is essential to any such protocol. In the 
preferred embodiment, the protocol provides the c^3^M:\dterminal from fraudulent attacks 
from impostor devices, either a card or terminal. 

In accordance with the invention there is provided A method of verifying a pair of 
participams in an electronic transaction to permit exchange of information therebetween, 
each of the p^ticipants includes a memory and having a respective private key t, a and 
public key Y^, YSsStored therein, the public keys derived from a generator a and a respective 
ones of the private R^s t, a, the method comprising the steps of 

(a) a first of the participants generating a unique transaction identification information PID 
upon initiation of the ele^onic transaction; 

(b) the first participant forwardmgto a second participant the transaction identification 
information PID and a first certifWe CI, the first certificate being signed by a 
certification authority according to a pi^etermined algorithm and including an 
identification information TIU ID unique tbsthe first participant and the public information 
Yt of the first participant; \^ 

(c) the second participant verifying the first certificate^, according to the predetermined 
algorithm, upon receipt thereof and extracting the identification information TIU ID and 
the public information Y^ therefrom; 



(d) the second participant, upon verification of the first certificate CI, generating a first 
Random integer R2; 

(e) the^cond participant generating a first and second signature components rl, si utilizing 
the pubKc key Yj of the first participant and the private key a of the second participant, 
respectively^cording to a predetermined protocol; 

(f) the second partDsipant forwarding a message to the first participant, including the 
signature component rl, si and a second certificate C2 signed by the certification 
authority according toXpredetermined algorithm and including an identification 
information CID unique th. the second participant and the public information Yc of the 
second participant; \ 

(g) the first participant verifying thevsecond certificate C2 and extracting the identification 
information CID and public key Y^^d verifying the authenticity of the second 
participant by extracting the transactionsidentification information PID from the received 
message and comparing the received transition identification information PID to the 
transmitted value; \ 

(h) the first participant extracting the first random mteger R2 from the received message and 
transmitting the first random integer R2 to the seconHj)articipant to acknowledge 
verification of the second participant; and \ 

(i) the second participant verifying the authenticity of the firsrparticipant by comparing the 
received first random integer R2 to the generated first random^teger R2 and transmitting 
a second random integer R3 to the first participant to acknowledging verification of the 
first participant, thereby permitting exchange of information betweenNthe participants. 

An embodiment of the invention will now be described by way of example only with 
reference to the accompanying drawings, in which: 

Figure 1 is a diagrammatic representation of a scanning terminal and personal 
transaction card; and 

Figure 2 is a chart that schematically illustrates the protocol. 

Referring therefore to figure 1, a scarmer terminal 10 has an inductive coupling 12 to 
cooperate with a card 14. When a card 14 is passed through the inductive coupling 12 a 



transaction is recorded within a memory 16 on the card 14. Typically the transaction will 
debit the card with a set amount, e.g. an admission price, and the terminal 10 is credited a 
corresponding amount. The terminal is connected through a network to a central computer 
located at a financial institution that maintains records of transactions in a conventional 
5 manner. 

To avoid fraudulent transactions being recorded at either the card or terminal the 
protocol shown in figure 2 is utilized. 

Upon the scanner sensing the card through coupling 12, a unique purchase I.D. (PID) 
is generated by the terminal 10. The terminal 10 has a private key, t, stored in a secure 
10 location and a corresponding public key Y* equal to a*. The terminal 10 generates a message, 
Ml, consisting of the purchase I.D. PID and the transaction amount, TA. It also appends to 
the message Ml a certificate signed by the certifying authority CA that includes terminal 
identification information TIU ID and the public key The message Ml is received by the 
card 14. 

15 Card 14 has a private key a stored securely in memory 16 and a public key Y^. equal to 

a^ (a is the generator point for the curve). The card verifies the terminals certificate as 
signed by the certifying authority CA according to a normal elliptic curve scheme. Having 
verified the certificate, the card generates a pair of random numbers R2 and R3 and signs the 
unique purchase I.D. PID using the terminals public key according to an established protocol. 

20 To effect signing, the card generates a random integer k and computes a session 

parameter a\ It also computes Y^^ and generates signature components rl and si. 



25 signifies concentration). ^""""^ 
The component si is provided by h»a+k mod q where: 
q is the order of the curve and 
hisahashh(M2//aV/R3). 
The card now sends signature components rl, si the hash h and a certificate issued by 
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ial to the number of bits in M2. (// 



the certifying authority CA containing its ID and public key to the terminal 10. 

The terminal verifies the cards credentials as signed by the CA. Given the hash h and 
si it can calculate the value a*"* and thereby recover the message M2 from rl using the cards 
public key. As the message M2 includes the PID, the terminal is able to verify the 
authenticity if the card 10. 

The recovered message includes R2 which is then retumed to the card 1 0 to prove 
that the terminal is extracting R2 in real time, i.e. during the transit of the card through the 
coupling 12, using its private key. This also prevents a reply attack by the terminal 10. 

The receipt of R2 also serves to acknowledge provision of the service. Upon receipt, 
the card checks R2 to ensure the message was recovered using the terminals private key. 
This confirms that the card was talking to the terminal rather than a fraudulent device which 
would not have the private key, t, available. 

If the card confirms the receipt of R2, it transmits the random R3 to the terminal 10 to 
complete the transaction. R3 is required for card signature verification by the bank and so R3 
is retained by the terminal 10 for central processing purposes. R3 is not released by the card 
until it has received R2 which confirms that the terminal 10 is performing computations in 
real time. 

The terminal 10 is required to submit to the financial institution the stored values of 
R2, R3, TA, PID, TIU ID, si and a*" in addition to the credentials of both card and terminal 
10. With this information the bank card is able to reproduce hash h, i.e. h(M2//aV/R3) by 
using the cards public key to prove that the transaction was authentic. 

It will be noted that the last two passes are essentially trivial and do not require 
computation. Accordingly the computation required by the card is minimal, being restricted 
to one verification and one signature that involves two exponentiations, v^th the balance 
avoiding computationally intense operations. 

As indicated in figure 2, an ECC implementation is the field 2*^^ using an anomalous 
curve of this protocol would resuh in less bandwidth (1533 bits) and reduced computation for 
the smartcard (31,000 clock cycles). The computational savings over previous protocols are 
possible due to features of the elliptic curve signature scheme used by the smartcard. 
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The particular benefits and attributes may be summarized as: 

1 . The purchase identifier PID is unique and is required to prevent terminal replay to 
the bank. If the purchase identifier is not unique, a random number Rl will also 
be required to provide the equivalent of the PID. 
5 2. The random bit string R2 is required to prevent replay to the card. 

3. A hash function (h) such as the SHAl is required to prevent modification of the 
message (m) and the terminal's identification (TIU ID). 

4. There appears to be no advantage to having the transaction amount signed by the 
terminal, resulting in one less signature verification for the card. The reason for 

10 this is that the message signed by the card contains a random number R2 which 

can only be recovered by the terminal. 

5. Using this scheme, the message m may only be recovered by the terminal (note 
the terminal's public key is used in step III therefore requiring the terminal's 
private key to verify and recover contents). By demonstrating to the card that the 

1 5 random string (R2) was obtained from the message, the terminal can be 

authenticated to the card. 
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